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All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course. THIS 
NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308. 

1 . This communication is responsive to amendment filed 3/5/09 . 

2. The allowed claim(s) is/are 13,17-25 and 28-33 . 

3. □ Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 

a) □ All b)DSome* c) □ None of the: 

1. □ Certified copies of the priority documents have been received. 

2. □ Certified copies of the priority documents have been received in Application No. . 

3. □ Copies of the certified copies of the priority documents have been received in this national stage application from the 

International Bureau (PCT Rule 17.2(a)). 
* Certified copies not received: . 

Applicant has THREE MONTHS FROM THE "MAILING DATE" of this communication to file a reply complying with the requirements 
noted below. Failure to timely comply will result in ABANDONMENT of this application. 
THIS THREE-MONTH PERIOD IS NOT EXTENDABLE. 

4. □ A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF 
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(a) □ including changes required by the Notice of Draftsperson's Patent Drawing Review ( PTO-948) attached 
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(b) □ including changes required by the attached Examiner's Amendment / Comment or in the Office action of 

Paper No./Mail Date . 

Identifying indicia such as the application number (see 37 CFR 1. 84(c)) should be written on the drawings in the front (not the back) of 
each sheet. Replacement sheet(s) should be labeled as such in the header according to 37 CFR 1.121(d). 
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DETAILED ACTION 
Status of Claims 

1 . This action is responsive to amendment filed on March 5, 2009 where claims 13,17- 
25,28-33 were pending. 

EXAMINER'S AMENDMENT 

2. An examiner's amendment to the record appears below. Should the changes and/or 
additions be unacceptable to applicant, an amendment may be filed as provided by 37 CFR 

1 .312. To ensure consideration of such an amendment, it MUST be submitted no later than the 
payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone interview with 
Lawrence H Aaronson (reg 35818) on 6/10/09. 

The application has been amended as follows: 

SEE ATTACHED LISTING OF CLAIMS 

Allowable Subject Matter 

3. Claims 13,17-25,28-33 are allowed. 

4. For reasons of Allowance see specifically pages 1 1-12 of Applicants remarks dated 
2/23/2009. 



Any comments considered necessary by applicant must be submitted no later than the 
payment of the issue fee and, to avoid processing delays, should preferably accompany the issue 
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fee. Such submissions should be clearly labeled "Comments on Statement of Reasons for 
Allowance." 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to RAMY M. OSMAN whose telephone number is (571)272-4008. 
The examiner can normally be reached on M-F 9-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ario Etienne can be reached on (571) 272-4001 . The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



/Ramy M Osman/ 

Primary Examiner, Art Unit 2457 



June 19, 2009 
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LISTING OF CLAIMS 

1-12. (Cancelled) 

13. (Currently amended) A method comprising: 

receiving from a subscriber station on an access network an authentication request, the 
authentication request identifying the subscriber station and identifying a designated service provider 
from among a plurality of service providers; 

sending the authentication request to the designated service provider; 

receiving from the designated service provider an authentication response indicating successful 
authentication of the subscriber station by the designated service provider, wherein the authentication 
response includes a service qualification that indicates at least one of (i) one or more types of services 
authorized for the subscriber station and (ii) one or more extents of service authorized for the subscriber 
station , wherein the service qualification specifies one or more types of communication and, for each 
specified type of communication, specifies whether the subscriber station is allowed to engage in the 
specified type of communication; 

responsive to the authentication response, assigning the subscriber station to operate in a designated layer 
of the access network set aside for subscribers that have been authenticated by the designated service 
provider and to operate according to the service qualification, wherein the access network is an IP 
network and the designated layer is an IP subnet, and wherein assigning the subscriber station to operate 
in the designated layer comprises assigning to the subscriber station an IP address in the IP subnet; and 

serving the subscriber station in the designated layer of the access network and pursuant to the service 
qualification indicated in the authentication response, 
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wherein serving the subscriber station in the designated layer comprises handling communications with 
the subscriber station according to a logic set established for the designated layer, 

wherein handling communications with the subscriber station according to the logic set established for the 
designated layer comprises (i) detecting a packet bearing the IP address assigned to the subscriber station , 
and (ii) responsively applying the logic set to restrict transmission of the packet, 

wherein handling communications with the subscriber station according to the logic set established for the 
designated layer comprises disallowing at least a predetermined type of communication from passing 
from the subscriber station to outside of the access network, and 

wherein serving the subscriber station pursuant to the service qualification indicated in the authentication 
response comprises, for each type of communication specified in the service qualification, allowing or 
disallowing the type of communication by the subscriber station as specified by the service qualification. 

14-16. (Cancelled) 

1 7. (Currently amended) The method of claim 13, wherein serving the subscriber station in the 
designated layer of the access network comprises: 

a gateway on the access network detecting a web page being sent to the subscriber station ; and 

the gateway modifying the web page to include an advertisement for the designated service provider. 

18. (Currently amended) The method of claim 13, further comprising prompting the subscriber 
station to provide the authentication request. 



Application/Control Number: 10/004,994 Page 6 

Art Unit: 2457 

1 9. (Currently amended) The method of claim 1 8, wherein prompting the subscriber station for the 
authentication request comprises: 

presenting to a user of the subscriber station a set of the plurality of service providers; and 

prompting the subscriber user to select a service provider from among the plurality presented, wherein the 
subscriber user selects the designated service provider from among the plurality. 

20. (Original) The method of claim 13, wherein the access network comprises a wireless access 
network. 

2 1 . (Previously Presented) A method carried out by an access network, the method comprising: 

prompting a first client station to select a service provider from among a plurality of service providers, 
and receiving a signal from the first client station, indicating a first selected service provider; 

sending a first authentication request message for the first client station to the first selected service 
provider, the first authentication request message indicating authentication information for the first client 
station; 

receiving a first authentication response message from the first selected service provider, the first 
authentication response message indicating that first client station is authenticated by the first selected 
service provider, wherein the first authentication response includes a first service qualification that 
indicates at least one of (i) one or more types of services authorized for the first client station and (ii) one 
or more extents of service authorized for the first client station, wherein the first service qualification 
specifies one or more types of communication and, for each specified type of communication, specifies 
whether the first client station is allowed to engage in the specified type of communication; and 
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in response to the first authentication response message, restricting the first client station to 
communications in a first logical layer of the access network associated with the first selected service 
provider and according to the first service qualification, 

wherein restricting the first client station to communications in the first logical layer of the access 
network associated with the first selected service provider comprises handling communications with the 
first client station according to a logic set established for the first logical layer, 

wherein handling communications with the first client station according to the logic set established for the 
first logical layer comprises disallowing at least a predetermined type of communication from passing 
from the first client station to outside of the access network, and 

wherein restricting the first client station to communications according to the first service qualification 
comprises, for each type of communication specified in the first service qualification, allowing or 
disallowing the type of communication by the first client station as specified by the first service 
qualification. 

22. (Previously presented) The method of claim 2 1 , further comprising: 

prompting a second client station to select a service provider from among a plurality of service providers, 
and receiving a signal from the second client station, indicating a second selected service provider; 

sending a second authentication request message for the second client station to the first selected service 
provider, the second authentication request message indicating authentication information for the second 
client station; 

receiving a second authentication response message from the second selected service provider, the second 
authentication response message indicating that second client station is authenticated by the second 
selected service provider, wherein the second authentication response includes a second service 



Application/Control Number: 10/004,994 Page 8 

Art Unit: 2457 

qualification that indicates at least one of (i) one or more types of services authorized for the second client 
station and (ii) one or more extents of service authorized for the second client station; and 

in response to the second authentication response message, restricting the second client station to 
communications in a second logical layer of the access network associated with the second selected 
service provider and according to the second seivice qualification. 

23. (Previously Presented) A communication system comprising: 

means for prompting a first client station to select a service provider from among a plurality of service 
providers, and for receiving a signal from the first client station, indicating a first selected service 
provider; 

means for sending a first authentication request message for the first client station to the first selected 
service provider, the first authentication request message indicating authentication information for the 
first client station; 

means for receiving a first authentication response message from the first selected seivice provider, the 
first authentication response message indicating that first client station is authenticated by the first 
selected service provider, wherein the first authentication response includes a first service qualification 
that indicates at least one of (i) one or more types of services authorized for the first client station and (ii) 
one or more extents of service authorized for the first client station, wherein the first service qualification 
specifies one or more types of communication and, for each specified type of communication, specifies 
whether the first client station is allowed to engage in the specified type of communication; and 

means for responding to the first authentication response message by restricting the first client station to 
communications in a first logical layer of the access network associated with the first selected service 
provider and according to the first service qualification, 
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wherein restricting the first client station to communications in the first logical layer of the access 
network associated with the first selected service provider comprises handling communications with the 
first client station according to a logic set established for the first logical layer, and 

wherein handling communications with the first client station according to the logic set established for the 
first logical layer comprises disallowing at least a predetermined type of communication from passing 
from the first client station to outside of the access network, and 

wherein restricting the first client station to communications according to the first service qualification 
comprises, for each type of communication specified in the first service qualification, allowing or 
disallowing the type of communication by the first client station as specified by the first service 
qualification. 

24. (Previously presented) The communication system of claim 23, further comprising: 

means for prompting a second client station to select a service provider from among a plurality of service 
providers, and for receiving a signal from the second client station, indicating a second selected service 
provider; 

means for sending a second authentication request message for the second client station to the first 
selected service provider, the second authentication request message indicating authentication information 
for the second client station; 

means for receiving a second authentication response message from the second selected service provider, 
the second authentication response message indicating that second client station is authenticated by the 
second selected service provider, wherein the second authentication response includes a second service 
qualification that indicates at least one of (i) one or more types of services authorized for the second client 
station and (ii) one or more extents of service authorized for the second client station; and 
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means for responding to the second authentication response message by restricting the second client 
station to communications in a second logical layer of the access network associated with the second 
selected service provider and according to the second service qualification. 

25. (Currently amended) The method of claim 13, further comprising: 

before receiving the authentication response, assigning the subscriber station to operate in a 
default layer of the access network; and 

handling communications in the default layer according to a default logic set. 
26-27. (Cancelled) 

28. (Currently amended) The method of claim 13, wherein handling communications with 
the subscriber station according to the logic set established for the designated layer comprises: 

detecting a web page being sent to an address on the designated layer; and 

injecting into the web page information specific to the designated service provider. 

29. (Previously presented) The method of claim 28, wherein the information comprises an 
advertisement for the designated service provider. 

30. (Currently amended) The method of claim 13, wherein the subscriber station 
communicates via an air interface with the access network. 
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3 1 . (Currently amended) The method of claim 13, wherein disallowing at least the predetermined 
type of communication from passing from the subscriber station to outside of the access network 
comprises disallowing all communications from passing from the subscriber station to outside of the 
access network. 

32. (Previously presented) The method of claim 2 1 , wherein disallowing at least the predetermined 
type of communication from passing from the first client station to outside of the access network 
comprises disallowing all communications from passing from the first client station to outside of the 
access network. 

33. (Previously presented) The method of claim 23, wherein disallowing at least the predetermined 
type of communication from passing from the first client station to outside of the access network 
comprises disallowing all communications from passing from the first client station to outside of the 
access network. 



